CNNVD-202511-1136 Information
CNNVD ID
CNNVD-202511-1136
Related CVE
- CNNVD Published: 2025-11-11
Description (Chinese)
Intel Server Configuration Utility和Intel Server Firmware Update Utility都是美国英特尔(Intel)公司的产品。Intel Server Configuration Utility是一个命令行实用程序。Intel Server Firmware Update Utility是一款命令行工具。 Intel Server Configuration Utility和Intel Server Firmware Update Utility 16.0.12之前版本存在后置链接漏洞,该漏洞源于文件访问前链接解析不当,可能导致权限提升。
Description (English)
Intel Server Construction Utility and Intel Server Fairmware Update Utility are products of Intel Inc. Intel Server Construction Utility is a command-line practical procedure. Intel Server Fairmware Update Utility is a command line tool. Intel Server Construction Utility and Intel Server Fairware Update Utility 16.0.12 had a backlink loophole, which stemmed from the misdialysis of the link prior to the document ’ s access and could lead to an increase in privileges.
Hazard Level
High
Vulnerability Type
后置链接
Affected Vendor
英特尔
Published
2025-11-11
Last Modified
2026-02-24
References
https://intel.com/content/www/us/en/security-center/advisory/intel-sa-01400.html https://access.redhat.com/security/cve/cve-2025-24918
Patch
https://intel.com/content/www/us/en/security-center/advisory/intel-sa-01400.html
Share on: